Menu
National Indian Students and Alumni Union UK (hereinafter referred to as “NISAU”) is the “data controller” for the purposes of the Data Protection Act 1998 and (from 25th May 2018) the EU General Data Protection Regulation 2016/679 (“Data Protection Law”). This means that we are responsible for, and control the processing of, your personal information.
We may collect personal information like (non-exhaustive list) your name, title, email address, messages and responses via your email address, physical address, postal address, contact details, date of birth, etc. This includes collecting information about yourself if you sign up to an event for NISAU by “liking”, “following”, or linking your email address to NISAU via a third-party website or network (e.g. communications network such as Whatsapp)
We may also collect your bank account details or card details to process any relevant transactions
We may also collect information about your health
We may also use images of you from our events for marketing purposes
We may also ask you for information when you report a problem with our website
If you contact us, we may keep a record of that correspondence
We may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them
Information that we obtain from you when you apply for a role at NISAU may include, subject to your prior written consent, sensitive information such as:
Racial or ethnic origin
Religious beliefs
Citizenship and Immigration status
Physical and mental health details
Commission of criminal offences and/or involvement in criminal proceedings
In addition to cookies (for which see the section below entitled What Cookies We Use), we may also collect details about your usage of the website. Those may include, but are not limited to:
Traffic data
Location data
Weblogs and other communication data (whether this is required for our own purposes or otherwise)
The resources that you access such as our advisories, news links etc.
We may obtain some information from publicly available sources such as news articles or open postings on social media such as Facebook and LinkedIn.
To keep you informed or get in touch with you regarding any of our activities or those that may be related to our activities.
To undertake public relations activities.
To keep a record of your relationship with us.
To process your payments for any events / activities / donations.
Mandatory / Regulatory processing (Attendance register, other relevant certifications) and administrative tasks
To administer the volunteering arrangement where you volunteer with us.
We do not sell or share your personal details to third parties for the purposes of marketing. But, if we run an event or activity in partnership with another organisation your details may need to be shared, and you will be notified in such circumstances.
To ensure that content from our website is presented in the most effective manner for you and for your computer
To provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purpose.
To allow you to participate in interactive features of our service, when you choose to do so
To notify you about changes to our service.
To carry out in-house research and analysis, for example data mining, marketing statistics etc.
To monitor customer traffic patterns, website usage and related website information in order to optimize your use of our website; data collected in this way will be aggregated and anonymized and passed to a reputable third party, but these statistics will include no information personally identifying you
To monitor customer traffic patterns, website usage and related website information in order to optimize your use of our website; data collected in this way will be aggregated and anonymized and passed to a reputable third party, but these statistics will include no information personally identifying you
The legal basis for processing your personal information is “legitimate interests”. Under “legitimate interests” we can
process your personal information if: we have a genuine and legitimate reason to carry out our activities and conduct
events.
From time to time, we may send electronic copies of advisories and other material to some of our contacts. The email software that we use to send this material might allow us to collect information about which contacts have and opened our e-mails. It does so by tracking when images and links contained in each email are retrieved and clicked on respectively. We might collect this information to monitor and improve the effectiveness of the material we send by email. You are able to block the collection of this information by adjusting your e-mail software’s privacy settings to prevent the automatic downloading of images (although if you do, some or all of an email’s.
Content may be unavailable unless you manually select to download images in that email) and by choosing not to click on the links. You can update your preferences or unsubscribe at any time by clicking on the relevant links at the bottom of each of our emails. You can update your preferences or unsubscribe at any time by clicking on the relevant links at the bottom of each of our emails.
We will use and store any personal data we collect in accordance with the General Data Protection Regulation (GDPR). Under the Act, your rights include:
You have the right to ask us not to process your personal data for marketing and donation request purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes. You may opt out of your personal data being used for direct marketing purposes by contacting us team@nisu.org.uk. Our website may, from time to time, contain links to and from external websites. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
The right to request a copy of your personal data which NISAU holds about you. You can make a request for access free of charge. Please make all requests for access via our email address provided below, and provide us with evidence of your identity. We will provide access without delay, and at latest, within one month of receipt of your request. However, if you have numerous or complex requests, we can extend the deadline by two months. If there is such a delay, we will notify you within a month of receipt of the request, providing the reasons for its delay.
You also have the following rights:
To request us to erase your Personal Data.
To request us to correct or change any personal data if it is found to be inaccurate or out-of-date; and
To request us to restrict our processing of your Personal Data; and
To object to the way in which we are dealing with and processing your Personal Information.
To object to the way in which we are dealing with and processing your Personal Information.
Should you wish to exercise these rights, we will require you to prove your identity with two pieces of approved dentification. We want to also make sure that your personal information is accurate and up to date.
You may ask us to correct or remove information you think is inaccurate. If you are not happy about the way in which we have processed or dealt with your information, you can complain to the Information Commissioner’s Office (ICO). You can find the details regarding the same here.
When you visit this website a small text file known as a cookie may be downloaded to your computer. This allows us to provide a better service by directing you to your preferred country and language settings on subsequent visits. You can adjust how your computer deals with cookies via your internet browser. The web server may also collect the user’s IP address. We use this information to:
Work out how many times the Website has been visited.
Identify where users of our website come from;
Track which parts of the Website have been visited so we can improve the content and layout.
In most cases, we collect this website usage information in a way which does not identify you and we do not attempt to link this information with the information that we collect about our contacts referred to above. However, if you arrive at our website by clicking a link in an e-mail we send, our software provider may link website usage information to your email address as described in the NISAU Mailing List section above.
The law states that we can store cookies on your machine if they are essential to the operation of the website but that for all others, we need your permission to do so. You can set your browser not to accept cookies and the above website tells you how to remove cookies from your browser. However, in a few cases some of our website features may not function as a result. If you do not wish to receive cookies from us or any other website, you can turn cookies off on your web browser: please follow your browser provider’s instructions in order to do so. Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit https://www.aboutcookies.org/ or www.allaboutcookies.org.
We will keep your information secure by taking appropriate technical and organisational measures against its unauthorised or unlawful processing and against its accidental loss, destruction or damage. Unfortunately, the internet is not always secure, therefore, although we will do our best to protect your personal data, we cannot guarantee the security of your data which is transmitted to our website or other products and services via an internet or similar connection and any transmission will be at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Where we use external companies to collect or process data on our behalf, your Data may be transferred to, and stored at, a destination outside the European Economic Area (EEA), which means all the EU countries plus Norway, Iceland and Liechtenstein. It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. Such staff may be engaged in, among other things, the provision of support services. If you do not want your information to be transferred outside the EEA you should not use our website, product or service or contact us via email
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our website, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our website; any transmission is at your own risk.
Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
We may share your personal information with third parties in the following circumstances:
If we or substantially all of our assets are acquired by a third party, in which case Personal Data held by us about you will be one of the transferred assets
If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use and other agreements; or to protect the rights, property, or safety of NISAU, or others. This can include exchanging information with other companies and organisations for the purposes of terrorism and fraud protection
If we have partnered with an organisation to organise and event that you have registered for. This could for example be a university in the United Kingdom
Hotels, airlines and travel agencies should NISAU arrange your travel and accommodation, for example if you are an invited guest speaker for one of our events.
The Purposes of transfer of your Data (save in the case of Sensitive Data, where we will have obtained your specific
consent to do so for one or more of the Purposes) are lawful because it is necessary for us to hold and use your
Personal Data so that we can perform our obligations under the contract we have entered into with you for the Purpose(s). In the event of any of the above scenarios occurring, we will endeavour to ensure that your rights and freedoms in respect of the processing of your personal data are adequately and appropriately protected.
We will not sell your data to any third part.
How long we store your data for. We will hold your personal information on our systems for as long as is necessary to operate the service in accordance with legal requirements and accounting rules.
Where your information is no longer required, we will ensure it is disposed of in a secure manner.
We shall review this policy from time to time and may update it. If we do so, the updated version will be uploaded on to the website, and will be effective from the moment it is uploaded, so please check it from time to time.
To exercise all relevant rights, queries or complaints, please in the first instance email us on team@nisu.org.uk